Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
212921	5	警告	Mozilla Foundation	-	Mozilla Firefox の WebGL の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-0830	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212922	6.8	警告	Mozilla Foundation	-	Mozilla Firefox の libstagefright におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-0829	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212923	6.8	警告	Mozilla Foundation	-	Mozilla Firefox の nsXMLHttpRequest::GetResponse 関数におけるメモリ二重解放の脆弱性	CWE-Other その他	CVE-2015-0828	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212924	6.8	警告	Mozilla Foundation	-	Mozilla Firefox の nsTransformedTextRun::SetCapitalization 関数における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-0826	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212925	4.3	警告	Mozilla Foundation	-	Mozilla Firefox の mozilla::MP3FrameParser::ParseBuffer 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-0825	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212926	5	警告	Mozilla Foundation	-	Mozilla Firefox の mozilla::layers::BufferTextureClient::AllocateForSurface 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-0824	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212927	7.5	危険	Mozilla Foundation OpenType Sanitiser project	-	Mozilla Firefox で使用される OpenType Sanitiser における開発者コンソールの情報に問題を引き起こされる脆弱性	CWE-Other その他	CVE-2015-0823	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212928	6.8	警告	Mozilla Foundation	-	Mozilla Firefox における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-0821	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212929	2.6	注意	Mozilla Foundation	-	Mozilla Firefox におけるサンドボックス保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2015-0820	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

212930	4.3	警告	Mozilla Foundation	-	Mozilla Firefox の UITour::onPageEvent 関数における偽装およびクリックジャッキング攻撃を実行される脆弱性	CWE-Other その他	CVE-2015-0819	2015-02-26 15:07	2015-02-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347071	-	phpstat	phpstat	setup.php in phpStat 1.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the $check variable.	CWE-20 Improper Input Validation	CVE-2005-1787	2016-11-26 03:27	2005-05-27	Show	GitHub Exploit DB Packet Storm

347072	-	postnuke_software_foundation	postnuke	Cross-site scripting (XSS) vulnerability in readpmsg.php in PostNuke 0.750 allows remote attackers to inject arbitrary web script or HTML via the start parameter.	CWE-79 Cross-site Scripting	CVE-2005-1778	2016-11-26 03:26	2005-05-31	Show	GitHub Exploit DB Packet Storm

347073	-	oracle	fusion_middleware	Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2010-0855.	NVD-CWE-noinfo	CVE-2010-0086	2016-11-19 12:02	2010-04-14	Show	GitHub Exploit DB Packet Storm

347074	-	oracle	fusion_middleware	Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2010-0086.	NVD-CWE-noinfo	CVE-2010-0855	2016-11-19 12:02	2010-04-14	Show	GitHub Exploit DB Packet Storm

347075	-	viewcvs	viewcvs	Cross-site scripting vulnerability in viewcvs.cgi for ViewCVS 0.9.2 allows remote attackers to inject script and steal cookies via the (1) cvsroot or (2) sortby parameters.	NVD-CWE-Other	CVE-2002-0771	2016-11-19 11:59	2002-08-12	Show	GitHub Exploit DB Packet Storm

347076	-	microsoft	internet_explorer	The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by enc…	CWE-20 Improper Input Validation	CVE-2000-0400	2016-11-8 03:25	2000-05-13	Show	GitHub Exploit DB Packet Storm

347077	-	siteatschool	siteatschool	PHP remote file inclusion vulnerability in Site@School (S@S) 2.4.03 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter to starnet/modules/include/incl…	NVD-CWE-Other	CVE-2006-4921	2016-10-18 12:41	2006-09-21	Show	GitHub Exploit DB Packet Storm

347078	-	hotplug_cms	hotplug_cms	SQL injection vulnerability in administration/includes/login/auth.php in HotPlug CMS 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (…	NVD-CWE-Other	CVE-2006-3190	2016-10-18 12:40	2006-06-23	Show	GitHub Exploit DB Packet Storm

347079	-	banex	banex	Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the (1) site_name parameter to (a) signup.php, and the (2) …	NVD-CWE-Other	CVE-2006-3963	2016-10-18 12:40	2006-08-2	Show	GitHub Exploit DB Packet Storm

347080	-	banex	banex	PHP remote file inclusion vulnerability in members.php in Banex PHP MySQL Banner Exchange 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_root parameter.	NVD-CWE-Other	CVE-2006-3964	2016-10-18 12:40	2006-08-2	Show	GitHub Exploit DB Packet Storm